Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / nagios

nagios

301 tracked vulnerabilities.

CVE-2020-6584 MEDIUM

Nagios Log Server 2.1.3 - Improper Privilege Management

CVE-2019-3698 MEDIUM

nagios < 3.5.1 - Local Privilege Escalation via Symlink Race in Cronjob

CVE-2019-20197 HIGH

Nagios XI 5.6.9 - Authenticated OS Command Injection via schedulereport.php id Parameter

CVE-2019-20139 MEDIUM

Nagios XI 5.6.9 - Authenticated Cross-Site Scripting via nocscreenapi.php or schedulereport.php Parameters

CVE-2019-15949 HIGH KEV

Nagios XI < 5.6.6 - Authenticated Remote Command Execution via getprofile.sh

CVE-2019-15898 MEDIUM

Nagios Log Server < 2.0.8 - Reflected Cross-Site Scripting via Login Page Username

CVE-2019-12279 CRITICAL

Nagios XI 5.6.1 - SQL Injection via Username Parameter in Password Reset Form

CVE-2019-9167 MEDIUM

Nagios XI < 5.5.11 - Cross-Site Scripting via xiwindow Parameter

CVE-2019-9166 HIGH

Nagios XI < 5.5.11 - Privilege Escalation via Config File Manipulation

CVE-2019-9204 CRITICAL

Nagios IM < 2.2.7 - SQL Injection

CVE-2019-9203 CRITICAL

Nagios Incident Manager < 2.2.7 - Authorization Bypass via API

CVE-2019-9202 HIGH

Nagios IM <2.2.7 - Authenticated RCE

CVE-2019-9165 CRITICAL

Nagios XI < 5.5.11 - SQL Injection via Fusekeys API

CVE-2019-9164 HIGH

Nagios XI < 5.5.11 - Authenticated Remote Code Execution via Autodiscovery Job

CVE-2018-25123 HIGH

Nagios XI <5.5.7 - Privilege Escalation

CVE-2018-25122 HIGH

Nagios XI < 5.4.13 - Authenticated Remote Code Execution via Component Download Page

CVE-2018-25121 MEDIUM

Nagios XI < 5.4.13 - Stored Cross-Site Scripting via Views Page

CVE-2018-25119 MEDIUM

Nagios Fusion < 4.1.5 - Cross-Site Scripting via Fusionwindow Parameter

CVE-2018-17147 MEDIUM

Nagios XI < 5.5.4 - Cross-Site Scripting in Auto Login Admin Management Page

CVE-2018-17148 CRITICAL

Nagios XI < 5.5.4 - Insufficient Access Control in Configuration Snapshot Page

CVE-2018-17146 MEDIUM

Nagios XI < 5.5.4 - Stored Cross-Site Scripting via Account Information Name Parameter

CVE-2018-20172 MEDIUM

Nagios XI < 5.5.8 - Cross-Site Scripting via rss_url Parameter

CVE-2018-20171 MEDIUM

Nagios XI < 5.5.8 - Cross-Site Scripting via RSS Dashlet URL Parameter

CVE-2018-18245 MEDIUM

Nagios Core 4.4.2 - Cross-Site Scripting via Alert Summary Reports

CVE-2018-15714 MEDIUM

Nagios XI 5.5.6 - Unauthenticated Reflected Cross-Site Scripting via oname and oname2 Parameters

Previous Page 9 of 13 Next

Products

nagios_xi 192 nagios 37 log_server 23 fusion 19 network_analyzer 7 nagios_core 5 XI 3 incident_manager 3 plugins 3 remote_plug_in_executor 3 Log Server 2 Nagios XI 2 favorites 2 nagios_cross_platform_agent 2 business_process_intelligence 1 nagios_network_analyzer 1 nagios_xi_docker_wizard 1 nagios_xi_switch_wizard 1 nagios_xi_watchguard_wizard 1 ndoutils 1 remote_plugin_executor 1

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy